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-- ThB MAILING DATE of this communication appears on the cover sheet with the correspondence address ~ 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

' Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply Is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 .704(b). 

Status 

1)E Responsive to communication(s) filed on 22 February 2002 , 
2a)n This action is FINAL. 2b)l3 This action Is non-final. 

3) n Since this application is in condition for allowance except for fonmal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-44 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 13 Claim(s) 27-34 and 41-44 is/are allowed. 

6) n Claim(s) 1-6.9-21,35 and 40 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) 0 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. . . 
^0)M The drawing(s) filed on 22 February 2002 is/are: a)S accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held In abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet{s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
!!)□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12)0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

Claims 1-44 are presented for examination. 

Information Disclosure Statement 

Regarding prior arts cited by Applicant, Information Disclosure Statement (IDS), 
Applicant is notified that due to sheer numerosity such as the exessive number of 
documents and pages, the PTO takes official action such as signing off the 1449's after 
Applicant makes some comments to specify which one{s) of the cited prior arts may be 
helpful to examination of the application. 

Allowable Subject Matter 

Claims 27-34 and 41-44 are allowed. 

Claims 7-8, 22-26, and 36-39 are objected to as being dependent upon a 
rejected base claim, but would be allowable if rewritten in independent form including all 
of the limitations of the base claim and any intervening claims. 



Claim Rejections - 35 USC § 102 
The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 
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(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

Claims 1-6, 9-21, 35, and 40 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Knapton, III, (U.S. Patent No. 6,363,486 and Knapton hereinafter). 

Regarding claims 1-2, 10-11, and 15, Knapton discloses a method comprising: 
requesting a first token (i.e., identifier of the appliation program) to unseal a 
sealed first portion of a multi-token sealed object to obtain a first portion of the multi- 
token sealed object, requesting a second token (i.e., identifier of the component) to 
unseal a sealed second portion of a multi-token sealed object to obtain a second portion 
of the multi-token sealed object, and using the first portion and the second portion to 
obtain an object from the multi-token sealed object (i.e., generating a first password 
from the application program identifier and a second password form the identifier of the 
component and allowing use of the component with the application program on the 
computer system if the first and the second passowrd match)(Col. 5, lines 10-67 and 
CoL 6, lines 1-67), 

Regarding claims 4-5, Knapton discloses further comprising: 
generating a key from the first portion and the second portion of the multi-token 
sealed object, and obtaining the object of the multi-token sealed object by using the 
generated key and an asymmetric cryptographic algorithm to decrypt an encrypted 
object of the multi-token sealed object (Col. 6, lines 1-40). 
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Regarding claims 3, 6, and 9, Knapton discloses further comprising: 
receiving a first key in response to the first token unsealing the sealed first 
portion (i.e., first password) only if the first token generated the sealed first portion, 
receiving a second key in response to the second token unsealing the second portion 
(i.e., second password) only if the second token generated the sealed second portion, 
generating a third key from the first key and the second key, and obtaining the object of 
the multi-token sealed by using the third key to decrypt an encrypted object of the multi- 
token sealed object (i.e., generating a first password from the application program 
identifier and a second password form the identifier of the component and allowing use 
of the component with the application program on the computer system if the first and 
the second passowrd match)(Col. 5, lines 10-67 and Col. 6, lines 1-67). 

Regarding claims 12 and 16, Knapton discloses further comprising: 
encrypting an object using a symmetric cryptographic algorithm and a key to 
obtain an encrypted object, and receiving a sealed encrypted object in response to the 
first token sealing the first portion that comprises the encrypted object, receiving a 
sealed key in response to the second token sealing the second portion that comprises 
the key (Col. 6, lines 1-40). 

Regarding claim 17, Knapton discloses further comprising: 
encrypting the object using an asymmetric cryptographic algorithm and an 
encryption key of an asymmetric key pair to obtain an encrypted object, receiving a 
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sealed encrypted object in response to the first token sealing the first portion that 
comprises the encrypted object, receiving a sealed decryption key in response to the 
second token sealing the second portion that comprises a decryption key of the 
asymmetric key pair (CoL 6, lines 1-40). 

Regarding claims 13-14 and 18, Knapton discloses further comprising: 
receiving a sealed first portion encrypted by the first token using a first key of the 
first token, the sealed first portion comprising the first key, a first seal record comprising 
one or more metrics specified by the first environment criteria (i.e., identifier of the 
appliation program), and a first digest value that attests to the integrity of the first key 
and the first seal record (i.e., generating a first password from the application program 
identifier), and receiving a sealed second portion encrypted by the second token using a 
second key of the second token, the sealed second portion comprising the second key, 
a second seal record comprising one or more metrics specified by the second 
environment criteria (i.e., identifier of the component), and a second digest value that 
attests to the integrity of the second key and the second seal record (i.e., generating a 
second password form the identifier of the component)(Col. 5, lines 10-67 and Col. 6, 
lines 1-67). 

Regarding claim 19, Knapton discloses wherein the first seal record comprises a 
unique first identifier for the first token, and the second seal record comprises a unique 
second identifier for the second token (Col. 2, lines 24-44). 
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Regarding claim 20, Knapton discloses furtlier comprising: 
encrypting the object using key that was generated based upon a first key and a 
second key, receiving a sealed first key in response to the first token sealing the first 
portion that comprises the first key, receiving a sealed second key in response to the 
second token sealing the second portion that comprises the second key (Col. 2, lines 
24-44). 

Regarding claim 35, Knapton discloses a machine readable medium comprising 
a plurality of instructions that, in response to being executed, result in a computing 
device sealing a first portion of a multi-token sealed object to first environment criteria 
using a first public key of a first token to obtain a sealed first portion, and sealing a 
second portion of the multi-token sealed object to second environment criteria using a 
second public key of a second token to obtain a sealed second portion (i.e.. Application 
program 12 also comprises application security control function 22, which operates to 
ensure that in this embodiment only licensed components are used with the application 
program)(Col. 2, lines 24-44 and Col. 3, lines 7-59). 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Arezoo Sherkat whose telephone number is (571) 272- 
3796. The examiner can normally be reached on 8:00-4:30 Monday-Friday. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571 ) 272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 




AYAZ SHEIKH 
SUPERVISORY PATENT EXAMINER 
TPCH»iOL06Y CENTER 2100 




Arezoo Sherkat 
Patent Examiner 
Group 2131 



Nov. 1th, 2005 



